Transcription

2 With version 10, Windows has moved the once desktop operating system firmly into the era of the mobility and the cloud. Windows 10 is a wholly new unified operating system that brings desktop, mobile and cloud worlds together, not only in the user experience, but in enterprise endpoint management as well. With its XenMobile end user mobile management platform, Citrix does the same, allowing enterprises to manage all their employees corporate, Bring Your Own Device (BYOD), Choose Your Own Device (CYOD) and Corporate Owned, Personally Enabled (COPE) Windows 10 devices-- desktops, laptops, smart phones and tablets--from a single pane of glass. A Single Unified Operating System With Windows 10, Microsoft has leveraged its desktop and laptop heritage as an advantage by introducing a single operating system, development and management platform across all devices and applications. For the first time, Windows 10 can run on any Windows 10 compatible device, whether it is a desktop system, laptop, tablet, smart phone or even Xbox. Microsoft is releasing Windows 10 Mobile for tablets and smart phones, but considers it an edition of Windows 10, rather than a separate OS, and has built all editions on a common architecture and a consistent user interface, with adaptations for smaller screens and touch screen interfaces when appropriate. Windows 10 also includes the platform and concept of universal apps, which allow the development of Windows Runtime apps that can be ported and rolled out to any type of Windows device in the enterprise, with minor changes in the codebase. The result will be applications, including Microsoft Office, that have almost identical functionality and very similar interfaces across devices. Windows 10 mobile devices won t be able to run Win32 desktop applications directly, however. Microsoft also provides software development kits for porting Apple ios and Google Android apps to Windows 10. 2

3 Aside from the OS and unified application platform, Windows 10 also has a unified management layer across desktop, laptop and mobile devices, allowing all Windows 10 devices to be managed from a single enterprise mobility management (EMM) platform such as Citrix XenMobile. Windows 10 provides a unified set of mobile device management (MDM) API s, unified application storefronts for application distribution and user self service and will offer its upcoming Enterprise Data Protection feature set across all devices. Mobile, Cloud Centric Management Managing Windows desktops and laptops has always been an IT-datacenter-centric experience, requiring endpoint systems to be network connected and domain joined or touched by IT to receive updates, images and new operating system versions. Such a scenario is not well suited to an era of global roaming mobile workers and poses security risks when users are disconnected for several hours or days. Running two separate management platforms for desktops/laptops and mobile devices is inherently inefficient, resource intensive and prone to management and security policy conflicts. Organizations that are still running previous versions of Windows may want to keep their two separate management platforms to accommodate devices and users running those operating systems. However, with Windows 10 there is now the option of combining the management of all devices in a single management platform with common policies. Aside from a single platform, however, Windows 10 management of mobile, desktop and laptop devices is now much more EMM centric and suited to a global, mobile, cloud oriented work environment than it was before. As with other EMM-oriented mobile platforms it includes the following capabilities: Self Enrollment With Windows 10 EMM, users can now self enroll any new device, including desktops and laptops and any COPE, BYOD, and CYOD devices quickly and easily without any IT involvement. The new version allows the use of Azure Active Directory, which means enrollment can be cloud based, rather than requiring a network connection to an enterprise datacenter, and can be done over any public or private wired or wireless network. Windows 10 also offers an alternative IT mass rollout option with settings preconfigured. Unified Application Stores Similar to ios and Android, Windows 10 now offers Web based app stores. These include Microsoft s Windows Store, a public repository for Microsoft and third-party vendor applications for all Windows 10 devices, and Windows Store for Business, the enterprise managed application repository for in-house and custom applications. IT can use the Windows Store for Business to provision users with applications and users can download and install their 3

4 approved enterprise apps without help from IT. The Windows Store for Business includes bulk purchase and application metering and reclamation capabilities as well. Even Win 32 applications can now be managed via the app store. A unified application catalog allows IT to distribute applications from any location, including the cloud and VDI. Users can access the catalog in a self service scenario and browse, search and install available applications based on their Active Directory user and group rights. Continuous Updates Microsoft calls Windows 10 the last version of Windows. From now on Windows 10 will have a service orientation, with regular updates and feature improvements, rather than major releases. Microsoft will distribute continuous updates to ensure users have all the latest features and security fixes. IT can use Microsoft Update or a local Windows Services Update Server to distribute updates and choose among three different update scenarios: Current Branch is consumer focused and packages new features together with updates, rather than as service packs and new releases. Current Branch for Business, BYOD -focused option that delivers critical updates and new features separately at different times, allowing IT to test new features before deployment. Long Term Servicing Branch, for more mission critical applications, allowing new features to be packaged together and deployed at specific times chosen by the organization. Single Sign-on Azure Active Directory will let organizations connect on premises with cloud based resources and allow users not only to self provision their devices but to have single signon across in- house and SaaS applications, including Microsoft Office 365. Security Organizations continue to wrestle with security threats and breaches and the security and compliance issues that come with a BYOD, CYOD, or COPE environment. Windows 10 comes with a hefty supply of new EMM style security features to protect enterprise information and applications in these environments. They include: Multifactor Authentication Windows Hello is a feature that allows multiple methods of user authentication to the device, including pictures, gestures and biometrics (such as fingerprint, facial and retinal scans when 3D infrared cameras or fingerprint readers are available on the device), sometimes in addition to a PIN. All Windows Hello data is stored and encrypted locally on the device. Once a user is authenticated to the device, Microsoft Passport uses a public/ 4

5 private key pair to let users authenticate securely to and access compatible applications, Web sites and networks without a password. Multiple users can use one device via Windows Hello. Device Guard is a threat protection feature that can supplement or even replace traditional endpoint protection solutions. It uses a combination of hardware and software to lock down a device so it can only run trusted applications and/or code signed by trusted signers--such as specific software vendors, the Windows Store, or your own organization--as defined by your Code Integrity policy. It s an effective way to protect against zero day attacks and other threats that traditional malware protection solutions often miss. Device Guard can use both hardware technology and virtualization to isolate the Device Guard mechanism from the rest of the operating system. Secure Boot protects devices from malware that loads during the boot process. With Secure Boot the UEFI firmware checks the cryptographic signature of any program attempting to load before the OS, including the OS bootloader. In Windows 10, Secure Boot can be turned off on a desktop but not a mobile device. Health Attestation then uses a Health Attestation module to communicate measured boot data to a trusted remote cloud service. The Health Attestation remote service performs checks on the measurements and conveys the device boot integrity and health securely back to the device. An MDM solution can use this information to determine if a device is compromised in some way, and pass the information to an identity provider to allow or refuse access to sensitive content. 100 plus new policies for application white and black listing, open in settings, copy and paste and other restrictions. Per app VPN s that allow individual apps to connect to enterprise and other data securely over the air or the wire. Enterprise Data Protection, (EDP) is currently in testing and will be released for broader testing at a later date. Its features will be built into the operating system and administered through an EMM solution such as XenMobile. EDP will be the mechanism that protects enterprise applications and data in a BYOD, CYOD or COPE environment, where they share or can be accessed by devices that hold personal and potentially harmful user applications and associated data. EDP allows IT to identify enterprise apps and data and implement policies that regulate exactly how the data can be shared. It then follows and protects enterprise data via containerization, 5

6 data encryption, and sophisticated data loss prevention. It also enables enterprise data wiping on remote mobile devices without any impact on personal data and can produce tracking and audit reports of app and data usage. Unlike other mobile platforms, Windows 10 EDP achieves containerization without forcing the user to switch manually between enterprise and personal environments and credentials on the device. Instead, both personal and business apps are displayed on the same screen and can be accessed at any time. IT simply creates a list of enterprise resources, including IP addresses, domains and accounts. Any data originating from these resources is recognized as business data and encrypted in transit and at rest in a secure virtual container. IT can also create a list of authorized enterprise applications that have permission to access certain business files and data and apply a host of policies around copying, cutting and pasting sensitive data or files into other applications, posting images on social media and other related actions. Unauthorized actions can be blocked or simply tracked and audited with a warning sent to the user. EDP also introduces the concept of Enlightened apps, which can access and recognize both enterprise and personal data and containerize and protect enterprise data automatically. For example, Outlook can be configured with both a personal and business address and separate s in two separate inboxes, applying enterprise policies to enterprise only. When it is complete, Windows 10 management and security will be formidable competitors with similar features on other mobile platforms. Citrix XenMobile Citrix XenMobile is a full featured enterprise mobility management (EMM) solution that allows IT to discover, secure, apply policies to and manage all its users devices running Apple ios, Windows Mobile, Windows 10 or Google Android. Not only does XenMobile provide comprehensive classic mobile device management (MDM) capabilities, such as device discovery, lifecycle management, policy enforcement, user self enrollment, and remote device lock and wipe. It also includes full encryption, application wrapping, containerization and data security features for Apple ios, Google Android and Windows Mobile that allow users to mix enterprise applications and data with their personal applications and data safely, without risk of enterprise malware infections or data breaches. 6

7 Citrix XenMobile s WorxHome is the launching pad that empowers Apple ios, Google Android and Windows Mobile users with secure enterprise class , Web browsing and file sharing mobile apps. WorxHome also includes ShareFile, a secure, enterprise-class, fully managed file sharing and collaboration alternative to consumer file sharing solutions such as DropBox and Box, providing users with secure access to all their files from any device. Through XenMobile and Citrix XenApp or XenDesktop integration, users can access their XenApp and XenDesktop apps and thus their Windows desktops within the Worx Home interface, without having to log in separately. With Citrix XenMobile users can combine corporate and personal lifestyles easily, without burdensome restrictions, while corporate IT can track and secure all the mobile devices, business applications and business application data. XenMobile Windows 10 Support Today Today, XenMobile Windows 10 support includes the following: Enrollment of Windows 10 smart phones, tablets, notebooks and desktops, including user self enrollment via Azure Active Directory, with autodiscovery of the appropriate XenMobile MDM server after the user types in an enterprise address. Azure AD enables a cloud based MDM server enrollment. Upon enrollment, the XenMobile MDM server can apply policies, push out applications and settings to the device and check device compliance with enterprise security rules. Worx Home with Worx Mail, Worx Web and other Worx Apps are currently available for Windows 10 phones only. Today, only Citrix Worx applications are wrapped and containerized on a Windows 10 phone. Other Worx-enabled apps from third party vendors or developed internally are not yet supported for Windows 10. Microsoft Office 365 can be deployed today across Windows 10 devices via the XenMobile Enterprise Store, along with a complete set of Worx-related security policies, such as Office 365 per app VPNs and XenMobile FIPS compliant AES 256-bit encryption of Office 365 data at rest. Organizations can also apply XenMobile application wrapping and containerization features, cloud backup, open in file restrictions, geo-location and numerous other security policies across Office 365 apps and files. Users can open Worx mail file attachments and ShareFile documents in Office

8 Exchange Activesync and S/MIME support provides users with access to enterprise and to push certificates, including SCEP certificate distribution, and WiFi, VPN, configuration settings, to the device. Third-party VPN plug-ins can be applied to support per-app VPN s. XenMobile can act as the SCEP server and gateway. Health Attestation to retrieve security information about each device, including boot process, Bitlocker and Secure Boot enablement and other relevant security information that helps IT determine if the operating system has been compromised, jailbroken or otherwise tampered with. Policies can then be applied if the device is not compliant, including wiping the device, sending notifications to the user, labeling the device as noncompliant, or sending s to administrators. XML scripts to deploy additional policies, such as disabling phone cameras, launching and locking applications on startup, and support for features such as Windows Hello. Remote Lock and Wipe of enterprise applications and data in the event of device loss and theft. Future XenMobile Windows 10 Support Application Distribution will be supported when XenMobile provides support for Microsoft Business Store portal. Worx apps, Windows Business Store, and Enterprise Data Protection when it becomes available from Microsoft) will be supported on all Windows 10 devices in the near future, as will Long Term Servicing Branch updates. Containerization will be offered across all third-party Worx Apps on all devices when Windows 10 EDP is available and supported by XenMobile. Summary Windows 10 will certainly accelerate the shift towards Unified Endpoint Management by Enterprise Management Solutions including XenMobile to manage any device (desktop, laptop, smartphone, tablet) and any platform (including ios and Android). The ability to reference any device from a single location saves significant IT resources that can be used for more strategic purposes. Be sure to watch for additional Windows 10 management and security features supported by XenMobile. 8

9 Corporate Headquarters Fort Lauderdale, FL, USA Silicon Valley Headquarters Santa Clara, CA, USA EMEA Headquarters Schaffhausen, Switzerland India Development Center Bangalore, India Online Division Headquarters Santa Barbara, CA, USA Pacific Headquarters Hong Kong, China Latin America Headquarters Coral Gables, FL, USA UK Development Center Chalfont, United Kingdom About Citrix Citrix (NASDAQ:CTXS) is leading the transition to software-defining the workplace, uniting virtualization, mobility management, networking and SaaS solutions to enable new ways for businesses and people to work better. Citrix solutions power business mobility through secure, mobile workspaces that provide people with instant access to apps, desktops, data and communications on any device, over any network and cloud. With annual revenue in 2014 of $3.14 billion, Citrix solutions are in use at more than 330,000 organizations and by over 100 million users globally. Learn more at www. Copyright 2015 Citrix Systems, Inc. All rights reserved. Citrix, XenMobile, XenApp,XenDesktop, ICA, Worx Home, WorxWeb, WorxMail, NetScaler Gateway, ShareFile, GoToAssist, Citrix Receiver and StorageZones are trademarks of Citrix Systems, Inc. and/or one of its subsidiaries, and may be registered in the U.S. and other countries. Other product and company names mentioned herein may be trademarks of their respective companies. 0416/PDF 9

Protecting Mobile Apps with Citrix XenMobile and MDX citrix.com Mobility is a top priority for organizations as more employees demand access to the apps and data that will make them productive. Employees

The Office Reinvented: Mobile Workspaces are the Future of Work How Citrix, Google and Samsung enable secure business mobility. Business mobility empowers people with a convenient and complete work experience

Citrix Lifecycle Management Comprehensive cloud-based service lifecycle management solution IT administrators are realizing that application deployments are getting more complex and error-prone than ever

Citrix Workspace Cloud Apps and Desktop Service with an on-premises Resource Reference Architecture Produced by Citrix Solutions Lab This guide walks you through an example of how to use Citrix Workspace

Citrix ShareFile Enterprise technical overview 2 The role of IT organizations is changing rapidly as the forces of consumerization pose new challenges. IT is transitioning from the sole provider of user

Secure Data Sharing in the Enterprise 2 Follow-me data and productivity for users with security and manageability for IT Productivity today depends on the ability of workers to access and share their data

Mobile workstyles White Paper Enabling mobile workstyles with an end-to-end enterprise mobility management solution. 2 The evolution of mobile workstyles has made it increasingly important for professionals

Citrix Workspace Cloud Apps and Desktop Services for New Customers Reference Architecture Produced by Citrix Solutions Lab This guide will walk you through an example of how to use Citrix Workspace Cloud

The fastest, most secure path to mobile employee productivity 2 If your organization lacks a bring-your-own-device (BYOD) strategy, you may be in danger of losing employees who are unhappy because they

Bring-Your-Own-Device Freedom Solutions for federal, state, and local governments Increasingly, IT organizations in federal, state, and local agencies are embracing consumerization with the understanding

Single Sign On for ShareFile with NetScaler Deployment Guide This deployment guide focuses on defining the process for enabling Single Sign On into Citrix ShareFile with Citrix NetScaler. Table of Contents

Modernize your business with Citrix XenApp 7.6 Avoid non-compliance issues and keep your business running smoothly by upgrading your SAP environment to run on top of the latest Citrix and Microsoft technologies

Run Skype for Business as a Secure Virtual App with a Great User Experience Improve security and manageability while avoiding the performance problems of traditional virtual installations. Deliver secure,

Solutions Brief The Always-on Enterprise: Business Continuity Scenarios that Work How mobility solutions from Citrix, Google and Samsung ensure continuous productivity. Business continuity keeps CIOs up

White Paper What s Missing from Your BYOD Strategy? for BYOD, CYOD or COPE In the early days of mobility, companies rushed to embrace bring-your-own-device (BYOD) programs, which allowed employees to use

Eight steps to fill the enterprise mobile application gap are quickly becoming as important and widespread in the enterprise as PCs and traditional business apps. Thanks to the consumerization of IT and

Citrix NetScaler Application Delivery Controller The world s most advanced cloud network platform. Citrix NetScaler enables the datacenter network to become an end-to-end service delivery fabric to scale,

Powering Real-Time Mobile Access to Critical Information With Citrix ShareFile An enterprise file sync and sharing solution built for the needs of the energy, oil and gas industry to provide employee and

Top Three Reasons to Deliver Web Apps with App Virtualization Improve manageability, security and performance for browser-based apps. Web browsers can cause many of the same headaches as any other Windows

Overview Guide ShareFile Enterprise technical overview Secure data sync and sharing services ShareFile empowers users to securely share files with anyone and to sync files across all of their devices The

Simple, secure access to apps and desktops from anywhere Today s fast-paced business world requires IT organizations to supply tools that allow employees to quickly react to the demands of a competitive

Product Overview Businesses rely on branch offices to serve customers, to be near partners and suppliers and to expand into new markets. As server and desktop virtualization increase and applications move

Mobile Application Management with XenMobile and the Worx App SDK 2 Enterprises of every size and across every industry have made mobility an important IT initiative. While most mobility strategies started

Advanced Service Desk Security Robust end-to-end security measures have been built into the GoToAssist Service Desk architecture to ensure the privacy and integrity of all data. gotoassist.com Many service

10 Essential Elements for a Secure Enterprise Mobility Strategy Best practices for protecting sensitive business information while making people productive from anywhere Mobility and bring-your-own device

Three ways companies are slashing IT costs with VDI Citrix XenDesktop helps customers lower operating and capital expenses while avoiding costly security breaches In a time of compressed budgets and new

The falling cost and rising value of desktop virtualization 2 The growing strategic value of desktop virtualization, from a more flexible, productive workforce to lower real estate costs, has made it a

Powering real-time mobile access to critical information with ShareFile An enterprise file sync and sharing solution built for the needs of the energy, oil and gas industry to provide employee and third-party

Desktop virtualization for all 2 Desktop virtualization for all Today s organizations encompass a diverse range of users, from road warriors using laptops and mobile devices as well as power users working

Mobility and cloud transform access and delivery of apps, desktops and data Unified app stores and delivery of all apps (Windows, web, SaaS and mobile) and data to any device, anywhere. 2 The cloud transforms

Desktop virtualization for all 2 Desktop virtualization for all Today s organizations encompass a diverse range of users, from road warriors using laptops and mobile devices as well as power users working

NetScaler for the best XenApp/XenDesktop access and mobile experience Discover 10 reasons NetScaler is the best way to futureproof your infrastructure As you refresh your network, it s important to understand

Citrix NetScaler and Thales nshield work together to protect encryption keys and accelerate SSL traffic With growing use of cloud-based, virtual, and multi-tenant services, customers want to utilize virtual

VDI and Beyond: Addressing Top IT Challenges to Drive Agility and Growth Citrix XenDesktop with FlexCast mobilizes the modern workforce App and Desktop virtualization can be a powerful driver of business

What We Do: Simplify Enterprise Mobility AirWatch by VMware is the global leader in enterprise-grade mobility solutions across every device, every operating system and every mobile deployment. Our scalable

White Paper Best Practices to Make BYOD, CYOD and COPE Simple and Secure Mobile productivity for your business. Freedom of choice for employees. Full security and control for IT. Define the right bring-your-own-device

RSA Adaptive Authentication and Citrix NetScaler SDX Platform Overview 2 RSA and Citrix have a long history of partnership based upon integration between RSA Adaptive Authentication and Citrix NetScaler

Optimizing the video experience for XenApp and XenDesktop deployments with CloudBridge Video content usage within the enterprise is growing significantly. In fact, Gartner forecasted that by 2016, large

Citrix Enterprise Mobility Report Plus 5 Steps to Building an Enterprise Mobility Strategy A survey of 510 IT Directors, CIOs, and Architects on the state of mobile applications, data, and devices in the

Deploying XenApp on a Microsoft Azure cloud The scalability and economics of XenApp services on-demand citrix.com Given business dynamics seasonal peaks, mergers, acquisitions, and changing business priorities

Data Center Consolidation for Federal Government Virtual computing transforms IT environments so agencies can cut costs, bolster efficiency and agility, and improve user productivity In a slow economy,

CWS- 300: Deploying and Managing Citrix Workspace Suite Citrix Education has developed an early- access training program for Workspace Suite customers. Designed to enable your team to implement and operate

Security Guide BlackBerry Enterprise Service 12 for ios, Android, and Windows Phone Version 12.0 Published: 2015-02-06 SWD-20150206130210406 Contents About this guide... 6 What is BES12?... 7 Key features

Consumerization Managing the BYOD trend successfully WWW.WIPRO.COM Harish Krishnan, General Manager, Wipro Mobility Solutions Employees dictate IT Enterprises across the world are giving in to the Consumerization

Redefining IT for federal healthcare agencies Redefining IT for federal healthcare agencies Virtualization solutions for clinicians and patients: Anytime, anywhere, on any device Executive summary These

To ensure the functioning of the site, we use cookies. We share information about your activities on the site with our partners and Google partners: social networks and companies engaged in advertising and web analytics. For more information, see the Privacy Policy and Google Privacy &amp Terms.
Your consent to our cookies if you continue to use this website.